2026-11-03 –, Room 2 Language: English
In a world of encrypted traffic and sophisticated evasion, the network remains the ultimate source of truth. Security tools may alert you that something is wrong, but the packets tell you exactly what happened on the wire.
This intensive one-day training transforms Wireshark from a simple troubleshooting tool into a powerful forensic engine. We move beyond basic protocol analysis to focus on the indicators of compromise (IoCs) and threat actor behavior hidden in plain sight. Participants will learn how to identify the subtle "heartbeats" of malware, recognize command and control (C2) patterns, and dissect behavior at various stages of an attack.
Through hands-on labs using real-world pcap datasets, we will cover:
Expert Filtering: Crafting security-focused display filters to cut through the noise.
Behavioral Analysis: Identifying anomalies in TCP/IP handshakes and DNS queries.
Actionable Reporting: Extracting evidence to build an irrefutable "proof of packet" case.
Marcelle brings over twelve years of experience in cybersecurity, and her journey has taken her through some of the most elite teams in the field, including Secureworks Counter Threat Unit (CTU) and the Equinix Threat Analysis Center (ETAC). She's a security consultant, threat researcher, educator, and intel analyst with deep expertise in cyber threat intelligence, digital forensics, intrusion analysis, security operations, and technical writing.
She has contributed to both government and private sector initiatives, bringing a well-rounded perspective to cyber defense and threat research. Before transitioning into cybersecurity, Marcelle led operations and managed complex projects across various industries.
A frequent speaker at conferences and training events, Marcelle is deeply committed to advancing the cybersecurity field and empowering the next generation of professionals.